D-Link DFL-200 - page 113

Settings for Main office

1. Setup interfaces, System->Interfaces:

WAN IP:193.0.2.20

LAN IP: 192.168.1.1, Subnet mask: 255.255.255.0

2. Setup L2TP server, Firewall->VPN:

Under L2TP / PPTP Server click Add new L2TP server

Name the server l2tpServer

Leave Outer IP and Inner IP blank

Set client IP pool to 192.168.1.100 – 192.168.1.199

Check Proxy ARP dynamically added routes

Check Use unit’s own DNS relayer addresses

Leave WINS settings blank

Under authentication MSCHAPv2 should be the onl y checked option

Under MPPE encryption None should be the only che cked option

Check the Use IPsec encryption box

Enter the pre-shared key, 1234567890, and retype same pre-shared key

Click Apply

3. Setup policies for the new tunnel, Firewall->Policy :

Click Global policy parameters

Enable Allow all VPN traffic: internal->VPN, VPN->internal and VPN->VPN

Click Apply

4. Set up authentication source, Firewall->Users:

Select Local database

Click Apply

5. Add a new user, Firewall->Users:

Under Users in local database click Add new

Name the new user HomeUser

Enter password: 1234567890

Retype password: 1234567890

Contents

Main Contents Page Page Page Page Introduction Features and Benefits Introduction to Firewalls Introduction to Local Area Networking LEDs Physical Connections Page Managing D-Link DFL-200 When a change is done to the configuration a new icon named Activate Changes Resetting the DFL-200 Administration Settings Administrative Access Add ping access to an interface Add Admin access to an interface Add Read-only access to an interface Enable SNMP access to an interface System Interfaces Change IP of the LAN or DMZ interface WAN Interface Settings Using Static IP WAN Interface Settings Using DHCP WAN Interface Settings Using PPPoE WAN Interface Settings Using PPTP WAN Interface Settings Using BigPond MTU Configuration Routing Add a new Static Route Remove a Static Route Logging Enable Logging Enable Audit Logging Enable E-mail alerting for ISD/IDP events Page Page Changing time zone Using NTP to sync time Setting time and date manually Firewall Policy Policy modes Action Types Source and Destination Filter Service Filter Schedule Intrusion Detection / Prevention Add a new policy Change order of policy Delete policy Configure Intrusion Detection Configure Intrusion Prevention Port mapping / Virtual Servers Add a new mapping Delete mapping Users The DFL-200 RADIUS Support Enable User Authentication via HTTP / HTTPS Enable RADIUS Support Add User Change User Password Delete User Schedules Add new recurring schedule Services Adding TCP, UDP or TCP/UDP Service Adding IP Protocol Grouping Services Protocol-independent settings VPN Introduction to IPSec Introduction to PPTP Introduction to L2TP Point-to-Point Protocol Authentication Protocols PAP CHAP MS-CHAP v1 L2TP/PPTP Clients L2TP/PPTP Servers Page VPN between two networks Creating a LAN-to-LAN IPSec VPN Tunnel VPN between client and an internal network Creating a Roaming Users IPSec VPN Tunnel Adding a L2TP/PPTP VPN Client Adding a L2TP/PPTP VPN Server VPN Advanced Settings Proposal Lists IKE Proposal List IPSec Proposal List Certificates Trusting Certificates Local identities Certificates of remote peers Certificate Authorities Identities Content Filtering Active content handling Edit the URL Global Whitelist Edit the URL Global Blacklist Page Servers DHCP Server Settings Enable DHCP Server Enable DHCP Relay Disable DHCP Server/Relayer DNS Relayer Settings Enable DNS Relayer Page Too ls Ping Ping Example Dynamic DNS Add Dynamic DNS Settings Backup Exporting the DFL-200s Configuration Restoring the DFL-200s Configuration Page Page Page Upgrade Upgrade Firmware Upgrade IDS Signature-database Status System Interfaces VPN Connections DHCP Server Page How to read the logs USAGE events DROP events CONN events Page Step by step guides LAN-to-LAN VPN using IPsec Page Page Page LAN-to-LAN VPN using PPTP Page Page Page Page Page Page LAN-to-LAN VPN using L2TP Page Page Page Page Page Page A more secure LAN-to-LAN VPN solution Page Page Page Windows XP client and PPTP server Settings for the Windows XP client Page Page Page Page Page Page Page Page Page Windows XP client and L2TP server Settings for the Windows XP client Page Page Page Content filtering Page Page Page Intrusion detection and prevention Page Page Appendixes Appendix A: ICMP Types and Codes Page Appendix B: Common IP Protocol Numbers LIMITED WARRANTY Product Type Warranty Period Limited Software Warranty: What You Must Do For Warranty Service: What Is Not Covered: Disclaimer of Other Warranties: Limitation of Liability: GOVERNING LAW: This Limited Warranty shall be governed by the laws of the state of California. Page Page Offices